12/07/2007 17:27 



6517351102 



SHUMAKER & SIEFFRERT 



RECEIVED '^^^ 
CEKTRAL»0( CENTER 



PAGE 05/22 



Application Number 10/656,751 

Amendment dated December 7, 2007 

Response to Office Action mailed September 7, 2007 



DEC 0 7 2007 



AMENDMENTS TO THE CLAIMS 



This listing of claims will replace all prior versions and listings of claims in the application. 
Listing of Claims: 



upon power-up of a computer, retrieving boot code and a certificate from a peripheral 
device coupled to the computer, the certificate de5cribiti.g operation of the boot code for 
initializing the peripheral device; 

verifying, with the computer, security of the boot code associated with the peripheral 
device by performing a security check on the boot code in accordance with the certificate; and 

ej^ecuting the boot code with the computer to fi) initialize the peripheral device based on 
a result of the security check and (ii) provide, subsequent to the initialization, an interface bv 
which the computer controls operation of the peripheral device . 

Claim 2 (Original) The method of claim 1, wherein verifying the security of the boot code 
includes verifying the boot code via Efficient Code Certification that specifies a process for 
performing the security check on the boot code as indicated by the certificate. 

Claim 3 (Original) The method of claim 1 , wherein the certificate further indicates a type of 
security check to perform. 

Claim 4 (Original) The method of claim 3, wherein the type of security check comprises one 
of a security check to enforce type safety, a security check to enforce control flow safety, a 
security check to enforce memory.safety, a seciuity check to enforce stack safety, a security 
check to enforce device encapsulation and a security check to enforce prevention of specific 
forms of harm. 

Claim 5 (Original) The method of claim 1 » v\i\erein the boot code includes boot firmware. 



Claim I (Currently Amended) 



A method comprising: 
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Claim 6 (Original) The method of claim 5, wherein the boot firmware conforms to Open 
Firmware standard IEEE-1275. 

Claim 7 (Original) The method of claim 1, wherein veri:fying the safety of the boot code 
occurs inline such that verifying the safety of the boot code occurs in real time prior to executing 
the boot code. 

Claim 8 (Original) The method of claim 1, wherein the boot code includes boot code defining 
a device driver to initialize the peripheral device and define an application program interface for 
accessing and controlhng the peripheral device. 

Claims 9 (Withdrawn) A method comprising: 

generating a boot code for a peripheral device from a program vvritten in a high-level 

programming language; 

gathering information while generating the boot code; and 

generating a certificate from information gathered while generating the boot code, 

wherein the certificate describes operation of the boot cbde. 

Claim 1 0 (Withdrawn) The metliod of claim 9, wherein generating the boot code 
comprises: 

compiling the program written in the high-Jevel programming language into a bytecode; 
translating the bytecode into a program written in a low-level programming language; and 
tokenizing the program written in the low-level language into the boot code. 

Claim 1 1 (Withdrawn) The method of claim 10, wherein gathering information while 
generating the boot code comprises gathering compilation information while compiling tlie 
program written in the high-level language into the bytecode. 
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Claim 1 2 (Withdrawn) The method of claim 1 1 , wherein the program written in the high- 
level language includes a call to a verification application program interface, which provides 
secure access to the peripheral device. 

Claim 1 3 (Withdrawn) The method of claim 10, wherein the low-level programming 
language includes Forth. 

Claim 14 (Withdrawn) The method of claim 9, wherein the high-level programming 
language includes one of Java, C+-i- and Visual Basic. 

Claim 1 5 (Withdrawn) The method of claim 9, wherein the boot code comprises boot 
firmware. 

Claim 16 (Withdrawn) The method of claim 15, wherein the boot firmware conforms to 
Open Firmware standard IEEE- 1275. 

Claim 1 7 (Withdrawn) Tlie method of claim 9, further comprising verifying security of the 
program written in die liigh-level programming language prior to generating the boot code, and 
wherein generating the boot code includes generating the boot code based on the result of 
verifying the security of the program written in the high-level programming language. 

Claim 18 (Currently Amended) A device comprising: 

an interface to retrieve boot code from a peripheral device upon power-up of the device; 
a memory module to store the boot code from the peripheral device; and 
a control unit to verify security of the boot code associated with the peripheral device by 
performing a security check on the boot code in accordance with a certificate that describes 
operation of the boot code, the control unit configured to execute the boot code to iiLinitialize 
the peripheral device based on a result of the security check and f ii^ provide, subsequent to the 
initialization, an interface bv which the control unit controls oper ation of the peripheral device. 
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Claim 19 (Original) The device of claim 1 8, wherein the control unit verifies the boot code 
using principles of Efficient Code Certification. 

Claim 20 (Original) The device of claim 1 8, wherein the certificate further indicates a type of 
security check to perform. 

Claim 21 (Original) The device of claim 20, wherein the type of security check comprise one 
of a security checks to enforce type safety, a security check to enforce control flow safety^, 
security checks to enforce memory safety, security checks to enforce stack safety, security checks 
to enforce device cncapsxilation and security checks to enforce prevention of specific forms of 
liarm. 

Claim 22 (Original) The device of claim 18, wherein the boot code includes boot firmware. 

Claim 23 (Original) The device of claim 22, wherein the boot firmware conforms to Open 
Firmware standard IEEE- 1275. 

Claim 24 (Original) The device of claim 1 8, wherein the control unit verifies the safety of the 
boot code in real time prior to executing the boot code. 

Claim 25 (Original) The device of claim 1 8, wherein the boot code defines a device driver to 
initialize the peripheral device and define an application program interface for accessing and 
controlling the peripheral device- 
Claim 26 (Withdrawn) A device comprising a control unit to generate a boot code for a 
peripheral device firom a program written in a high-level programming language and generate a 
certificate from information gathered while generating the boot code, wherein the certificate 
describes operation of the boot code. 
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Claim 27 (Withdrawn) The device of claim 26, wherein the control unit compiles the 
program written in the high-level programming language into a bytecode, translates the bytecode 
into a program written in a low-level programming language, and tokenizes tlie program written 
in a low-level language into the boot code. 

Claim 28 (Withdrawn) The device of claim 27, wherein the control unit generates the 
certificate from compilation information gathered by the control, unit while the control unit 
compiles the program written in the high-level language into the bytecode. 

Claim 29 ( Withdrawn)The device of claim 27, wherein the low-level programming language 
includes Forth. 

Claun 30 (Withdrawn) The device of claim 26, wherein the high-level programming 
language includes one of Java, C-H- and Visual Basic. 

Claim 3 1 (Withdrawn) The device of claim 26, wherein the boot code comprises boot 
firmware. 

Claim 32 (Withdrawn) The device of claim 3 1 , wherein the boot firmware conforais to 
Open Firmware standard IEEE- 1275. 

Claim 33 (Witlidtawn) The device of claim 26, wherein the program written in the high- 
level language includes a caU to a verification application program interface, which provides 
secure access to the peripheral device. 

Claim 34 (Withdrawn) The device of claim 26, wherein the control unit verifies security of 
the program written in the high-level programming language prior to generating the boot code 
and generates the boot code based on the result of the verification of the security of the program 
written in the high-level programming language. 
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Claim 35 (Currently Amended) A system comprising: 

a peripheral device having a memory module, wherein the memory module stores a boot 
code and a certi fi cate; and 

a computer having an interface to retrieve the boot code and the certificate from the 
peripheral device, a second memory module and a control unit, wherein the control unit uses the 
interface to retrieve the boot code and the certificate from the peripheral device and executes a 
verification module that verifies security of the boot code by performing a security check on the 
boot code in accordance with a certificate that describes operation of the boot code, mud 

wherein the control unit further executes the boot code based on a result of the security 
check to fi) imtialize the peripheral device and (ii) provide, subsequent to the initialization, an 
interface by which the control unit controls operation of the t^erinheral device . 

Claim 36 (Original) The system of claim 35, v\diercin the cot)trol unit verifies the boot code 
using principles of Efficient Code Certification, 

Claim 37 (Original) The system of claim 35, wherein the certificate further indicates a type of 
security check to perform. 

Oaim 38 (Original) The system of claim 37, wherein the type of security check comprise one 
of a security check to enforce type safety, a security check to enforce control flow safety, a 
security check to enforce memory safety, a seciuity check to enforce stack safety, a security 
check to enforce device encapsulation and a security check to enforce prevention of specific 
forms of harm. 

Claim 39 (Original) The system of claim 35, wherein the verification module verifies the safiety 
of the boot code in real time prior to executing the boot code. 

Claim 40 (Original) The system of claim 35» wherein the boot code defines a device driver to 
initialize the peripheral device and to defiine an application program interface for accessing and 
controlling the peripheral device. 
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Claim 4 1 (Original) The system of claiin 35, wherein the peripheral device comprises one of a 
graphic device, network controller and storage controller. 

Claim 42 (Withdrawn) A system comprising: 

a peripheral device having a memory module; and 

a control unit to generate a boot code from a program written in a high-level 
programming language, generate a certificate from information gathered while generating the 
boot code, and load the boot code and the certificate into the memory module, wherein the 
certificate describes operation of the boot code. 

Claim 43 (Withdrawn) The system of claim 42, wherein the control unit compiles tlie 
program written in the high-level programming language into a bytecode, translates the bytecode 
into a program written in a low-level programming language, and tokenizes the program written 
in a low-level language into the boot code. 

Claim 44 (Withdrawn) The system of claim 43, wherein the control unit gathers 
compilation information while the control unit compiles the program written in the high-level 
language into the bytecode. 

Claim 45 (Witlidrawn) The system of claim 44, wherein the program written in the high- 
level language includes a call to a verification application program interface, which provides 
secure access to the peripheral device. 

Claim 46 (Withdrawn) The system of claim 42, wherein the control unit verifies security 
of the program written in the high-level programming language prior to generating the boot code 
and generates the boot code based on the result of the verification of the security of the program 
written in the high-level programming language. 
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Claim 47 (Currently Amended) A computer-readable medium comprising instructions for 
causing a programinable processor to: 

retrieve boot code from a peripheral device; 

store the boot code on a computer coupled to the peripheral device; 

verify security of the boot code associated with the peripheral device by performing a 
security check on the boot code in accordance with a certificate that describes operation of the 
boot code; and 

execute the boot code based on a resuh of the security chec k to (i) initialize the peripheral, 
device and (ii) provide, subsequent to the initialization, an interface bv which the tsrogrammable- 
processor controls operation of the peripheral device . 

Claim 48 (Original) The computer-readable medium of claim 47, wherein the instructions for 
causing the programmable processor to verify the security of the boot code includes instructions 
to verify the boot code using principles of Efficient Code Certification. 

Claun 49 (Original) The computer-readable medium of claim 47, wherein the certificate further 
indicates a type of security check to perform. 

Claim 50 (Original) The computer-readable medium ofclaim 49, wherein the type of security 
check comprise one of a security check to enforce one of type safety, a security check to enforce 
control flow safety, a security check to enforce memory safety, a security check to enforce stack 
safety, a security check to enforce device encapsulation and a security check to enforce 
prevention of specific forms of harm. 

Claim 5 1 (Original) The computer-readable medium of claim 47, wherein the boot code 
includes boot firmware. 

Claim 52 (Original) The computer-readable medium of claim S 1 , wherein the boot finnware 
conforms to Open Firmware standard IEEE- 1 275, 
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Claim 53 (Original) The computer-readable tnedium claim 47, wherein instruction causing 
the programmable processor to verify the safety of the bojot code includes instructions causing 
the programmable processor to verify the safety of the bobt code in real time prior to executing 
the boot code. 

Claim 54 (Original) The computer-readable medium, of*" claim 47, wherein the boot code 
includes boot code defining a device driver to initialise tllie peripheral device and to define an 
application program interface for accessing and controlliilig the peripheral device. 

Claim 55 (Withdrawn) A computer-readable medilim comprising instructions for causing 

i 

a programmable processor to : j 

generate a boot code for a peripheral device fromja program written in a high-level 
programming language; and j 

generate a certificate that describes operation of t(ie boot code from information gathered 
while generating the boot code. | 

j 

Claim 56 (Withdrawn) The computer-readable mejlium of claim 55. wherein the 
instructions to generate the boot code comprises instructions to cause the programmable 

i 

processor to: ! 

compile the program written in the high-level projgramming language into a bytecode; 

translate the bytecode into a program written in a [low-level programming language; and 

I 

tokenize the program written in a low-level langujage into the boot code. 

i 

I 

Claim 57 (Withdrawn) The computer-readable mddi^n*i of claim 56, wherein information 
gathered while generating the boot code, further include^ compilation information gathered while 

compiling the program written in the high-level language into the bytecode. 

j 

I 

Claim 58 (Withdrawn) TTie computer-readabk mfnm of claim 56, wherein the high- 
level programming language includes Java, C-*-i- and Visual Basic. 
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Claim 59 (Withdrawn) The cojnputer-readable medium of claim 56, wherein the low-level 
programming language includes Forth. 

Claim 60 (Withdrawn) The computer-readable medium of claim 55, wherein the boot code 
comprises boot firmware. 

Claim 6 1 (Withdrawn) The computer-readab) e medium of claim 60, wherein the boot 
firmware conforms to Open Firmware standard IEEE- 1275. 

Claim 62 (Withdrawn) The computeT-readable medium of claim 55, wherein the program 
written in the high-level language includes a call to a verification application program interface, 
which provides secure access to the peripheral device. 

Claim 63 (Withdrawn) The computer-readable medium of claim 55, ftirther comprising 
instruction to cause the pTOgrammable processor to verify security of the program written in the 
hi^-Ievel programming language prior to generating the boot code and generating the boot code 
includes generating the boot code based on the result of verifying the security of the program 
written in the high-level programming language. 

Claim 64 (Withdrawn) A method comprising: 

generating a boot code in the fcode programming language for a peripheral device flrom a 
program written in the Java programming language; and 

generating a certificate from information gathered while genemting the boot code^, 
wherein the certificate describes operation of the boot code. 
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